AhnLab "Targeted Ransomware Attacks Intensify... Cloud Security Threats"
Announcement of Top 5 Security Threats Outlook for 2020
[Asia Economy Reporter Bu Aeri] AhnLab announced on the 3rd the selection of the top 5 cyber security threats for this year.
The 5 threats disclosed by AhnLab are ▲ Full-scale targeted ransomware attacks ▲ Emergence of cloud security threats ▲ Increase in security threats to special-purpose systems and OT ▲ Sophistication of information gathering and theft attacks ▲ Diversification of mobile cyber attack methods.
AhnLab expects ransomware to continue in the form of an "Advanced Persistent Threat (APT)" that persistently attacks specific targets. The anticipated attack type is a "fileless attack," which executes malware directly on the computer without files.
Also, as many companies move their business infrastructure to the cloud for cost reduction and operational efficiency, attackers' focus is expected to concentrate on cloud environments. Security incidents caused not only by external attacks but also by technical flaws in cloud systems themselves or user configuration errors are predicted to increase.
Due to the transformation into a "cashless society," cyber attacks targeting points where direct monetary transactions occur, such as Point of Sale (POS) systems or Automated Teller Machines (ATM), were also identified as major threats.
Traditional cyber attacks that infiltrate systems to collect and steal important information from users or organizations are expected to continue.
As technology advances and most information flows over IT infrastructure, this year the attack scope is predicted to expand further to all possible information within the IT infrastructure domain. Therefore, traditional forms of information gathering and theft attacks are expected to remain a major axis of security threats this year.
AhnLab also expects mobile cyber attacks to diversify from methods that deceive users for financial gain to methods targeting the app supply chain itself.
Recently, attackers have been attempting to change their business model by creating and distributing malicious SDKs (Software Development Kits) in forms that are difficult even for mobile app developers to detect.
If mobile app developers inadvertently use such SDKs, they may create and distribute malicious apps unintentionally. Attackers are creating an environment where apps performing malicious activities can be distributed without their direct involvement. These malicious apps can be distributed through legitimate app stores such as Google Play, potentially increasing the damage.
Hot Picks Today
As Samsung Falters, Chinese DRAM Surges: CXMT Returns to Profit in Just One Year
- "Most Americans Didn't Want This"... Americans Lose 60 Trillion Won to Soaring Fuel Costs
- Man in His 30s Dies After Assaulting Father and Falling from Yongin Apartment
- Samsung Union Member Sparks Controversy With Telegram Post: "Let's Push KOSPI Down to 5,000"
- "Why Make Things Like This?" Foreign Media Highlights Bizarre Phenomenon Spreading in Korea
Han Chang-gyu, head of the Security Response Center, warned, "As digital transformation rapidly progresses across various industries, the destructive power of cyber attacks can also increase."
© The Asia Business Daily(www.asiae.co.kr). All rights reserved.
